Dart Analyzer
Experimental: This analyzer is considered experimental. While this analyzer may be useful and provide valid results more testing must be completed to ensure that the false negative/false positive rates are acceptable.
OWASP dependency-check includes an analyzer that extract dependency information
from pubspec.lock
and pubspec.yaml
files.
File names scanned: pubspec.yaml, pubspec.lock